[issue32257] Support Disabling Renegotiation for SSLContext
Christian Heimes
report at bugs.python.org
Sun Dec 10 15:51:54 EST 2017
Christian Heimes <lists at cheimes.de> added the comment:
Thanks for checking! I had only checked 1.0.2 and 1.1.0 branch...
I can easily expose the info cb in Python -- but there is no simple way to bubble up an exception from a callback to Python. The server name callback ignores exception and just prints them with PyErr_WriteUnraisable().
Since OpenSSL 1.1.1 will have SSL_OP_NO_RENEGOTIATION, I'm leaning towards not making the code more complicated. Either we have to wait for 1.1.1 or ask OpenSSL to backport the feature to 1.0.2 and 1.1.0.
----------
_______________________________________
Python tracker <report at bugs.python.org>
<https://bugs.python.org/issue32257>
_______________________________________
More information about the Python-bugs-list
mailing list